1. network infrastructure - roger clarke · 3. network infrastructure services ¥...

Copyright2013-16

1

COMP 2410 – Networked Information Systems

1. Network Infrastructure

Roger ClarkeXamax Consultancy, Canberra

Visiting Professor, A.N.U. and U.N.S.W.

http://www.rogerclarke.com/II/NIS2410.html#L1http://www.rogerclarke.com/II/NIS2410-1 {.ppt, .pdf}

ANU RSCS, 15 March 2016

Copyright2013-16

2

Networked Information SystemsThis Series of Six Lectures

Network Infrastructure and Architecture1. Network Infrastructure

Networks, Devices, Services, Uses & Abuses

2. The Architectures of Networked ApplicationsInformation Assurance and Security3. Security of Information and IT4. Malware and Other Attacks5. Data Protection and Privacy6. Key Security Safeguards

Copyright2013-16

3

1. NetworksWired vs. Unwired

• Twisted-Pair Copper Cable

• Coaxial Cable• Fibre-Optic Cable

• Wifi• Cellular • Fixed Wireless• Satellite

Copyright2013-16

4

NationalBroadband

Network(NBN)

FTTP / FTTNfor 'urban'

93% of 24m

Fixed Wireless for 'rural'

Satellite for 'remote'

Copyright2013-16

5

NBN in NSW

FTTP / FTTNfor 'urban'

93% of 24m

Fixed Wireless for 'rural'

Satellite for 'remote'

http://www.itnews.com.au/gallery/photos-nbn-coverage-maps-221455/page2

Copyright2013-16

6

Wireless Networks

• Wide Area Networks – Cellular (50m to 10km cell-radius, withincreasing data capacity per user, particularly from 3G onwards)

1G – Analogue Cellular, e.g. AMPS, TACS (1987-2000)2G – Digital Cellular, e.g. GSM, CDMA (1992-2016/17)3G – GSM/GPRS/EDGE, CDMA2000, UMTS/HSPA (1998-)4G – LTE, deployment nearing completion 2015-17 (2008-)

Copyright2013-16

7

Wireless Networks

• Wide Area Networks – Cellular (50m to 10km cell-radius, withincreasing data capacity per user, particularly 3G onwards)

1G – Analogue Cellular, e.g. AMPS, TACS (1987-2000)2G – Digital Cellular, e.g. GSM, CDMA (1992-2016/17)3G – GSM/GPRS/EDGE, CDMA2000, UMTS/HSPA (1998-)4G – (Vo)LTE, deployment nearing completion 2016 (2008-)

• Local Area Networks – ‘WiFi’ (10-100 m radius), (1999-)primarily IEEE 802.11x, where x=a,b,g,n, ac, etc. – vs. LTE?

Copyright2013-16

8

Wireless Networks

• Fixed-Wireless/Line-of-Sight – 802.16 (WiMAX) (2008-)TD-LTE/LTE-TDD (2012-)

(3-10 km per cell, high-capacity per user, local monopoly?, trees!)• Wide Area Networks – Cellular (50m to 10km cell-radius, with

increasing data capacity per user, particularly 3G onwards)1G – Analogue Cellular, e.g. AMPS, TACS (1987-2000)2G – Digital Cellular, e.g. GSM, CDMA (1992-2016/17)3G – GSM/GPRS/EDGE, CDMA2000, UMTS/HSPA (1998-)4G – (Vo)LTE, deployment nearing completion 2016 (2008-)

• Local Area Networks – ‘WiFi’ (10-100 m radius) (1999-)primarily IEEE 802.11x, where x=a,b,g,n, ac, etc. – vs. LTE?

Copyright2013-16

9

Wireless Networks• Wide Area Networks – Satellite (Geosynch; Low-Orbit)

Geosynch has a large footprint, but very high latency (c. 2 secs)





Copyright2013-16

10







• Personal Area Networks (1-10 metres) – Bluetooth? Infra-red?

Copyright2013-16

11







• Personal Area Networks (1-10 metres) – Bluetooth? Infra-red?• Contactless Cards / RFID Tags / NFC Chips (1-10cm radius)

Copyright2013-16

12

Different Interpretations of 'Mobile'

• Variable-Location, rather than FixedPortable PC as well as HandheldsDoesn't necessarily require Wireless Comms

• Device-in-MotionUse within a Room, Building, Campus, Car, Train, ...

• Generally, Wireless Comms are area-limited• How to achieve 'handoff' between cells

and sustain the conversation / session?

Copyright2013-16

13

2. Network-Connected Devices 'Any device that provides users with the capacity to participate in

Transactions with Adjacent and Remote devices by Wireless Means'• Nomadic / Untethered Portables• Mobiles / Smartphones• Handheld Computing Devices

PDAs, games machines, music-players, 'converged' / multi-function devices,Tablets esp. iPad but now many followers

Copyright2013-16

14




• Processing Capabilities in Other 'Form Factors'Credit- and Debit-cards; RFID and NFC tags

Copyright2013-16

15

Contactless Cards

• eTags for Toll-RoadsOperate autonomouslyLimited audit-trail; difficult to challenge

• Tap-On-and-Off – Public Transport TicketsHK Octopus, London Oyster, Qld GoCard, ACT Myway, Vic MyKi, NSW Opal

• Tap-and-Pay – Visa PayWave, MasterCard PayPassPIN-less up to c. $100, with no dockets necessary

Copyright2013-16

16




• Processing Capabilities in Other 'Form Factors'Credit- and Debit-cards; RFID and NFC tags

• Wearable Computing DevicesWatches, finger-rings, spectacles, key-rings, necklaces, bracelets, anklets (fashion or imposed), body-piercings, ...

http://www.rogerclarke.com/EC/VADER.html

Copyright2013-16

17

2. Network-Connected Devices

• Hosts ('Servers')• Desktops• Laptops• Handhelds• Other Form-Factors, e.g. Cards• Wearables

• Embedded in 'Things'• Embedded in Animals• Embedded in Humans

Copyright2013-16

18

Generations of User Interface

• Command-Line Interfaces1960s onwardsNow associated with Unix shells

• Graphical User Interface (GUI), withMouse / Roller-Ball / Track-Pad / ...1981 (Xerox Star), 1983 (Lisa), 1984 (Mac)

• Gesture-Based Interfaces2D, 'touch'-sensitive screens, 2007 (iPhone)3D, with Haptic technologies

• ... [Watch this space] ...

Copyright2013-16

19

The Internet

CellularNetwork

Corp.Router

BackboneRouters

HomeRouter

Fire-wall

Gateway

IAP

IAP

IAP

Web-ServerWeb-Server

IAP

Local AreaNetwork (LAN)

HomeLAN

Corp.Servers

Corp.Wkstns

Copyright2013-16

20

3. Network Infrastructure Services

• 'Permanent' StorageDevice-Level, Removable, Local/NAS, Remote, Remote Distributed, Remote Replicated

• Temporary StorageLocal Buffers, Layers of Caches

• Intermediary NodesRouters – Local and BackboneProxies, Reverse-Proxies

Copyright2013-16

21

Intermediary Nodes• Router

An intermediating node that connects networks and passes data between devices on each of them

• Proxy-ServerAn intermediating node that assists requesting devices by passing requests on to a particular service, e.g. anulib access to journals databases, and web and email anonymisers

• Reverse Proxy-ServerAn intermediating node that assists responding devices by passing requests on to a particular service, e.g. to load-balance across web-servers

Copyright2013-16

22

The Internet

CellularNetwork

Corp.Router

BackboneRouters

HomeRouter

Fire-wall

Gateway

IAP

IAP

IAP

Web-ServerWeb-Server

IAP

Local AreaNetwork (LAN)

HomeLAN

Corp.Servers

Corp.Wkstns

Copyright2013-16

23

4. Uses and Abuses

• From Local Software to Remote Services• From Friendly-Web to Spider-Web

('Where do cookies come from')• Bitcoin

Blockchains more generally

Copyright2013-16

24

Consumer Computing

Email clients, usingsmtp/pop/imap

Personal Web-Sites

Dedicated Devices

Office on the Desktop

FTP-server and -client

Functions Applications 1975-2000

Email

Personal Galleries

Personal Music

Doc Prep

File-Sharing

Copyright2013-16

25

Consumer Computing

Email clients, usingsmtp/pop/imap

Personal Web-Sites

Dedicated Devices

Office on the Desktop

FTP-server and -client

Webmail, usinghttp / https

Flickr, Picasa, ...

iTunes, ...

Zoho, GDocs, MS365

Dropbox, ...

Functions Applications ==>> Services 1975-2000 2000-

Email

Personal Galleries

Personal Music

Doc Prep

File-Sharing

http://www.rogerclarke.com/EC/CCC.html#CAS

Copyright2013-16

26

Consumer Requirements and Risks – 1 of 3The Basic Needs• Does it do what I want it to do? [Fit]• Will it be there when I want it? [Availability, Reliability]

Copyright2013-16

27

Consumer Requirements and Risks – 1 of 3The Basic Needs• Does it do what I want it to do? [Fit]• Will it be there when I want it? [Availability, Reliability]

The Basic Protections• How do I keep going if it stays fallen over for a long time?

[Service Interruptions]• Will you respond helpfully and quickly enough when I ask for help?

[Customer Service]• Will you lose my data, or muck it up? [Data Integrity]• Do I get my data back if you fall over or withdraw the service?

[Survival]• Can I move my data to another supplier? [Lateral Compatibility]• Who can I complain to if I get dudded, and will they actually help

me? [Consumer Protection]

Copyright2013-16

28

Consumer Requirements and Risks – 2 of 3

More Advanced Needs• Will it keep doing what it does now? [Service Integrity]• Will it stay up-to-date? [Future Fit]• Will it fall over too often? [Robustness]• Will it come back quickly after it falls over? [Resilience]• Is my service protected against you, them and the gods? [Service Security]• If bits of it are broken, will you fix it without breaking it some more?

[Maintainability]• Can I fiddle with it a bit if I need to? [Flexibility]• Can I move my data to an upgraded version? [Forward Compatibility]• How long will old versions keep working for me?

[Backward Compatibility]• Am I breaking the law if I use the service? [Legal Compliance]

Copyright2013-16

29

Consumer Requirements and Risks – 3 of 3More Advanced Protections• Am I going to get gouged? [Cost]• Can only appropriate people get in and do things?

[Authentication and Authorisation]• Can I get access to all data that you hold about me?

[Subject Access]• Is my data protected against you, them and the gods?

[Data Security]• Is my privacy protected against you, them and the gods?

[Privacy Controls]• If I terminate our relationship, will my data be irretrievably

deleted? [Fully Effective Withdrawal]• What happens to my data if I die? [Archival / Memorialisation]

http://www.rogerclarke.com/EC/CCC.html#CRR

Copyright2013-16

30

LinkedIn, In-Depth• No responsibility to provide the service,

to do so reliably, or to sustain data stored in it• Subscribers must disclose physical location, even if irrelevant• No internal complaints process• No rights to restitution, no liability for identity fraud• LinkedIn gains rights to customers' data that are almost

equivalent to the rights of the customers themselves• Unilateral changes to the Privacy Statement, without notice• Storage in the USA under lax privacy laws• No undertakings to control the behaviour of staff• Enforced 'permission' to disclose personal data, without legal

authority, "to assist government enforcement agencies"• Inadequate subject access and correction rights

http://www.rogerclarke.com/EC/CCC.html#PRD

Copyright2013-16

31

The Consumer-Friendly Web (1.0)

1990 - 2005

InternetServicesProvider

FilePossessor

A: Upload

B3: Response

B4:Response

B2: RequestInternetAccessProvider

B1:Request

Copyright2013-16

32

Search Architecture

TheInternet

Web-Servers

Client (Web-

Browser)

ReferenceList

Spideror

Robot Indexer

Indexor

Concordance

QueryEngine

ResultsFormatter

Copyright2013-16

33

Cookie Processing

• Each time a user requests a page, the browser checks whether a cookie exists that has been designated to be sent to such a web-server (based on domain-name)

• If so, the browser transmits the cookie-data to the server, along with the GET request for the page

• The server is able to use the data in the cookie to 'remember' something about the user

• This may be done with or without user-consent

Copyright2013-16

34

The Upside• Cookies can be used for user-profile data,

controlled by the user, containing membership-numbers, login-ids (and perhaps passwords??), user-interface preferences, and search-related data (such as areas of interest and common synonyms)

The Downside• Marketers use them to maintain user-profile data,

on the user's own machine, without consent• Marketers form strategic partnerships to exchange

that data, to pool their user-profile information

Copyright2013-16

35

JavaScript / ECMAScript / JScript

• Javascript is an extension to the HTML specification• It enables the web-page designer to cause the

web-browser to perform some kinds of processing• One very effective use is to check whether

a form that the user is about to send to the server contains all of the required data

• But:• implementation details vary across browsers• its use can cause accidental harm• it is insecure, and is used for harmful purposes

Copyright2013-16

36

Three Views of Web 2.0

• The CommunitarianCollaborate

• The TechnicalGet inside users’ devices and do things

• The Marketer / ‘Neo Dot.com’ MovementMake money by exploiting collaboration

Copyright2013-16

37

The Spider-Web (2.0)2005 – ...

• Web-Browsers and the http Protocolare designed to facilitate Servers' needs

• Server-supplied code runs inside browsers• Web-Browsers ask for a web-page

but instead:Web-Servers deliver active codeWeb-Servers 'invite' many other, uninvited Web-Servers to deliver active code

http://www.rogerclarke.com/EC/Web2C.html#Retrohttp://www.rogerclarke.com/EC/Web2C.html#AltT

Copyright2013-16

38

Will People Eventually be Banned From Controlling General-Purpose Computing Devices?

Some powerful groups might like to achieve it

• Copyright-Dependent Corporations• Government Censors• The Moral Minority, who want governments to

extend censorship to whatever content the moral minority thinks the immoral majority shouldn't have access to

• (Dominant) Computing Device Providers• Law Enforcement & National Security Agencies (LEANs)• 'Fraud Experts'

Copyright2013-16

39

Bitcoin• A digital asset and payment system

which operates on a decentralised basis,whereby transactions are checked against a public register replicated on many nodes

• A replicated database storing an accounting 'ledger'which contains 'blocks' of datawhich comprise all or some recent 'valid' transactions. The blocks are 'chained' in that each includes the hash of the prior block, enabling controls and audit. (In Bitcoin, 'valid' = digitally signed transfers of available value).

'Blockchain'

Copyright2013-16

40

1. Network InfrastructureAgenda

• NetworksWired and Unwired

• Devices'Form-Factor', Power, Mobility

• Intermediary ServicesStorage Layers, Intermediaries

• Uses & AbusesRemote Services, Spider-Web, Entropic Services

Copyright2013-16

41

COMP 2410 – Networked Information Systems

1. Network Infrastructure

Roger ClarkeXamax Consultancy, Canberra

Visiting Professor, A.N.U. and U.N.S.W.

http://www.rogerclarke.com/II/NIS2410.html#L1http://www.rogerclarke.com/II/NIS2410-1 {.ppt, .pdf}

ANU RSCS, 15 March 2016

1. network infrastructure - roger clarke · 3. network infrastructure services ¥...

Documents